Use ParsePaths to source sensitive wrapper config values from Env/File if desired #275

sgmiller · 2025-01-22T17:42:21Z

Hopefully I identified which config elements are "sensitive" per wrapper correctly, that's definitely something to get a second pair of eyes on.

stevendpclark

Looks good 👍 Two small comments before approval.

wrappers/awskms/go.mod

wrappers/transit/options.go

…e if desired (hashicorp#275) * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * update go.mods to point to a fixed tag for ParsePath * go mod tidy * pr feedback

…ashicorp#272) and Use ParsePaths to source sensitive wrapper config values from Env/File if desired (hashicorp#275) * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * rollback wrapper changes until we have a tagged top level package * Improve ParsePaths behavior in errors, and add a usage comment --- * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * update go.mods to point to a fixed tag for ParsePath * go mod tidy * pr feedback

…ashicorp#272) and Use ParsePaths to source sensitive wrapper config values from Env/File if desired (hashicorp#275) * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * rollback wrapper changes until we have a tagged top level package * Improve ParsePaths behavior in errors, and add a usage comment Original commit: a1337fd --- * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * update go.mods to point to a fixed tag for ParsePath * go mod tidy * pr feedback Original commit: 9aac87b

* wrappers/transit: support context cancelation (hashicorp#259) This makes the transit client respect context cancelation, which is a critical feature of any I/O API. Original commit: 05c77e8 * Support parseutil.ParsePath for sensitive values in wrapper configs (hashicorp#272) and Use ParsePaths to source sensitive wrapper config values from Env/File if desired (hashicorp#275) * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * rollback wrapper changes until we have a tagged top level package * Improve ParsePaths behavior in errors, and add a usage comment Original commit: a1337fd --- * Add support for stdlib ParsePath to sensitive options * wip * wire up QuietParsePath to all remaining wrappers * Add ParsePaths * wip new pattern * bug fixes * remove unused * unit test * mod tidy * remove unnecessary change * remove unnecessary change * Use the new parsepath options * add missing errnoturl check * Update to parsepath 0.1.9 * update go.mods to point to a fixed tag for ParsePath * go mod tidy * pr feedback Original commit: 9aac87b * Facilitate use of User Managed Identities (hashicorp#277) * wip * tidy Original commit: 0ea6bba * Fix the fact that some GCP env vars are immune to disallowEnvVars (hashicorp#250) Original commit: 24f9019 * Fix transit context cancellation test Signed-off-by: Alexander Scheel <ascheel@gitlab.com> * Add wrapping.ParsePaths(...) to pkcs11 Signed-off-by: Alexander Scheel <ascheel@gitlab.com> * Bump openbao/api & openbao/sdk to latest versions Signed-off-by: Alexander Scheel <ascheel@gitlab.com> --------- Signed-off-by: Alexander Scheel <ascheel@gitlab.com> Co-authored-by: Johan Brandhorst-Satzkorn <johan.brandhorst@gmail.com> Co-authored-by: Scott Miller <smiller@hashicorp.com>

sgmiller added 17 commits July 7, 2023 10:39

Add support for stdlib ParsePath to sensitive options

bf6eab8

wip

0e5fa2f

Merge remote-tracking branch 'origin/main' into sgm/parsepath

2dc6748

wire up QuietParsePath to all remaining wrappers

30a1df8

Add ParsePaths

0b764cf

wip new pattern

4f66df1

bug fixes

afc29c6

remove unused

f900b1c

unit test

c166424

mod tidy

f92fcd4

remove unnecessary change

e55ab18

remove unnecessary change

0c8f3fb

Use the new parsepath options

bf9e3b0

add missing errnoturl check

90ae2af

Update to parsepath 0.1.9

f772901

Merge remote-tracking branch 'origin/main' into sgm/parsepath-wireup

56657a4

update go.mods to point to a fixed tag for ParsePath

7cdb64e

sgmiller requested review from jefferai and jimlambrt as code owners January 22, 2025 17:42

sgmiller requested a review from a team January 22, 2025 17:42

sgmiller added 2 commits January 22, 2025 12:58

Merge remote-tracking branch 'origin/main' into sgm/parsepath-wireup

4455142

go mod tidy

5d2c825

stevendpclark reviewed Jan 23, 2025

View reviewed changes

wrappers/awskms/go.mod Outdated Show resolved Hide resolved

wrappers/transit/options.go Outdated Show resolved Hide resolved

pr feedback

2a3e7d6

sgmiller requested a review from stevendpclark January 23, 2025 17:27

stevendpclark approved these changes Jan 23, 2025

View reviewed changes

jefferai approved these changes Jan 23, 2025

View reviewed changes

sgmiller merged commit a1337fd into main Jan 23, 2025
20 checks passed

sgmiller deleted the sgm/parsepath-wireup branch January 23, 2025 22:04

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Use ParsePaths to source sensitive wrapper config values from Env/File if desired #275

Use ParsePaths to source sensitive wrapper config values from Env/File if desired #275

sgmiller commented Jan 22, 2025

stevendpclark left a comment

Use ParsePaths to source sensitive wrapper config values from Env/File if desired #275

Use ParsePaths to source sensitive wrapper config values from Env/File if desired #275

Conversation

sgmiller commented Jan 22, 2025

stevendpclark left a comment

Choose a reason for hiding this comment